INFORMATION ON THE PROCESSING OF PERSONAL DATA
(EU REGULATION 2016/679, hereinafter ‘Regulation’)
Dear Customer,
in this document, we inform you of the characteristics of the processing of your personal data (by way of example but not limited to; name, surname, identification document details and copy thereof, telephone number, email address) carried out by SupAdventures asd. In particular, information is hereby provided on:
1) Who is the Data Controller?
2) How to contact the Data Protection Officer?
3) On what legal basis and for what purposes does Sup Adventures asd process your data?
4) To whom may the data be disclosed?
5) Can the data be transferred to countries outside the European Union?
6) For how long is the data stored?
1) Who is the Data Controller?
The Data Controller of your personal data is Sup Adventures asd, based in Carloforte (SU) – 09014, Via Dante 36, tel 334 2984666.
2) How to contact the Data Protection Officer?
The Data Protection Officer (hereinafter also referred to as “DPO” or “Data Protection Officer”) can be contacted at the following addresses
– postal address of Sup Adventures asd, Carloforte (SU) – 09014, Via Dante 36, tel 334 2984666 ;
– e-mail address: sup@supadventures.it .
3) On what legal basis and for what purposes does Sup Adventures asd process your data?
The Data requested by Sup Adventures asd varies according to the purposes:
1. Membership to the amateur sports association Sup Adventures asd through the Italian Federation FISW Surfing: Name, Surname, Mail, Telephone, Residence, Place and Date of Birth, Tax Code
2. Membership to the amateur sports association Sup Adventures asd through the sports promotion body ASI: Name, Surname, Mail, Telephone, Residence, Place and date of Birth, Tax Code
3. Participation in the commercial activities offered by Sup Adventures asd (lessons, rentals, courses, excursions etc.): Name, Surname, Mail, Telephone, Accommodation in Carloforte.
4. Participation in member activities offered by Sup Adventures asd (lessons, rentals, courses, excursions etc): Name, Surname, Mail, Telephone, Place and date of birth, Tax code.
5. Promotional and marketing activities: newsletter: Name, Surname, Mail.
The processing of your personal data is carried out by Sup Adventures asd exclusively in the presence of at least one of the following conditions
– fulfilment of legal obligations for membership of the relevant federation or sports promotion body;
– Registration for participation in commercial and/or member activities offered by SupAdventures asd completed and signed by you on paper or via web form;
– Registration for courses and activities offered by Sup Adventures asd via web form.
– consent for specific purposes;
– legitimate interest of Sup Adventures asd.
The processing, therefore, is carried out in compliance with the conditions of lawfulness provided for by the Regulations and is limited to what is necessary for the carrying out, by SupAdventures asd and/or third parties on its behalf, of activities connected with and instrumental to
– fulfilling legal obligations,
– if consent has been given:
– satisfaction surveys on the quality of services rendered;
– marketing of its own products and services,
– the processing of studies and market research;
– profiling activities in order to offer you personalised products and services that meet your needs.
– pursuing the legitimate interest of Sup Adventures in offering you products and services that best meet your needs. In addition, Sup Adventures asd allows you to opt-out of this service through the option to unsubscribe at every contact opportunity.
Within the limits of the specific purposes indicated above, the processing of your personal data is carried out through manual and computerised means.
4) To whom may the data be communicated?
Sup Adventures may communicate your data to third parties belonging to the following categories
– National Federation FISW Surfing, in order to be able to proceed with memberships as per your request:
– ASI sports promotion body, in order to proceed with memberships as per your request:
– Comitato Olimpico Nazionale Italiano (Italian National Olympic Committee), in order to proceed with memberships as per your request:
– to perform the contract to which you are a party and pre-contractual activities requested by you:
– to carry out optional activities that you have consented to:
– marketing and market research companies;
5) How long is data stored?
Sup Adventures asd retains your membership data (name, surname, date and place of birth, fiscal code, residence) for the duration of two years in the event of a request for renewal of membership of the federation or sports promotion body. After the first year of non-renewal the data will be deleted.
Sup Adventures asd will keep the data for marketing purposes (email, first and last name) until the user requests deletion with a special link at the end of each email he receives.
Data subject to retention obligations under tax or commercial law (invoices, business letters, etc.) are retained for the respective legal retention period. The legal retention period is currently 10 years for tax purposes and 6 years for commercial purposes.
6) What are your rights?
We inform you that you, as a data subject, may exercise specific data protection rights, which are listed below:
– right of access: the right to obtain from the Controller confirmation as to whether or not personal data is being processed and, if so, to obtain access to personal data and detailed information on the origin, purposes, categories of data processed, recipients of communication and/or transfer of data, and so on
– right to rectification: the right to obtain from the Controller the rectification of inaccurate personal data without undue delay, as well as the integration of incomplete personal data, also by providing a supplementary declaration
– right to erasure (‘oblivion’): the right to obtain from the Controller the deletion of personal data without undue delay in the event that:
i. the personal data are no longer necessary in relation to the purposes of the processing;
ii. the consent on which the processing is based is withdrawn and there is no other legal basis for the processing;
iii. personal data have been processed unlawfully;
iiii. personal data must be erased in order to comply with a legal obligation;
– Right to object to processing: the right to object at any time to the processing of personal data that has as its legal basis a legitimate interest of the Controller and/or to the processing for marketing purposes. In case of objection to processing for marketing purposes, personal data shall no longer be processed for such purposes;
– right to restriction of processing: the right to obtain from the Controller the restriction of processing, in cases where the accuracy of personal data is contested (for the period necessary for the Controller to verify the accuracy of such personal data), if the processing is unlawful and/or the data subject has objected to the processing
– right to data portability: right to receive personal data in a structured, commonly used and readable format and to transmit such data to another Data Controller, only for cases where the processing is based on consent or contract and only for data processed by electronic means
– Right to lodge a complaint with a supervisory authority: without prejudice to any other administrative or judicial remedy, a data subject who considers that processing operations concerning him or her are in breach of the Regulation shall have the right to lodge a complaint with the supervisory authority of the Member State in which he or she resides or habitually works, or of the State in which the alleged breach occurred.
We also inform you that you have the right to revoke at any time any consent you may have given to specific optional activities, without prejudice to the lawfulness of the processing performed prior to revocation.
To exercise your rights, you may forward your request to the following addresses
– postal address of Sup Adventures asd, Carloforte (SU) – 09014, Via Dante 36, tel 334 2984666 ;
– e-mail address: sup@supadventures.it .
EXTENDED COOKIE POLICY
Cookies are portions of code installed inside the browser that assist the Data Controller in providing the service for the purposes described. Some of the purposes for which cookies are installed may also require the User’s consent.
Use of Cookies
This site uses Cookies to make the browsing experience simple and effective for those who view its pages.
Users viewing the site will see minimal amounts of information placed on their devices, whether computers or mobile devices, in small text files called “cookies” stored in directories used by the user’s web browser.
By disabling cookies some of the site’s features may not function properly.
There are various types of cookies, some to make the use of the Site more effective, others to enable certain features.
Our cookies allow us to remember your preferences, avoid re-entering the same information over and over, and analyse your use of the site to optimise your experience.
Types of cookies used on this site
Technical Cookies
This type of cookie is strictly necessary for the correct operation of certain sections of the site. They are of two categories: persistent and session:
1) persistent: once the browser is closed they are not destroyed but remain until a preset expiry date
2) session cookies: they are destroyed each time the browser is closed.
These cookies, always sent from our domain, are necessary to display
correctly the site and in relation to the technical services offered, they will therefore always be used and sent, unless the user changes the settings in their browser (thus affecting the display of pages on the site).
Analytical cookies
These cookies are used to collect information on the use of the site.
This information is used for anonymous statistical analysis in order to improve the use of the site and to make the content more interesting and relevant to the user’s wishes. This type of cookie collects data in an anonymous form on user activity and how users arrived at the site. Analytical cookies are sent from the site itself or from third-party domains.
Third party analytics cookies
These cookies are used to collect information about how users use the site anonymously such as: pages visited, time spent, traffic origins, geographical origin, age, gender and interests for marketing campaigns. These cookies are sent from third party domains outside the site.
Cookies to integrate third party software products and functions
This type of cookie integrates functionality developed by third parties within the pages of the site such as icons and preferences expressed in social networks for the purpose of sharing site content or for the use of third party software services (such as software to generate maps and other software offering additional services). These cookies are sent from third party domains and partner sites that offer their functionality between the pages of the Site.
Profiling cookies
These are those cookies necessary to create user profiles in order to send advertisements in line with the preferences expressed by the user within the pages of the Site.
We do not use profiling cookies on our Site.
Types of cookies used in this site
In this site, according to current legislation, we are not required to ask for consent for technical cookies, as they are necessary to provide the services requested.
For all other types of cookies, consent may be expressed by the user in one or more of the following ways:
1) By means of specific configurations of the browser used or the relevant computer programs used to navigate the pages that make up the site.
2) By changing the settings when using third-party services.
These solutions may prevent the user from using or viewing parts of the Site.
Third-party websites and services
The Site may contain links to other websites which have their own privacy policy which may differ from that adopted by this site and which are therefore not responsible for these sites.
Saving preferences, optimisation and statistics
Use of cookies to save browsing preferences and optimise the User’s browsing experience. These cookies include, for example, those for setting the language and currency.
How to disable cookies by configuring certain browsers
Each browser has specific instructions for configuring cookies.
Here are some references:
CHROME Complete Guide
MOZZILLA FIREFOX Full Guide
INTERNET EXPLORER Full Guide
SAFARI 6/7 Full Guide
SAFARI iOS MOBILE DEVICES Full Guide
OPERA – Full Guide
Cookies used by this site
wordPress test cookies
WordPress Cookie Check
Personal Data Collected: Cookies and Usage Data
Expiry: at the end of the browsing session
viewed_cookie_policy
Purpose: To display the cookie banner
Personal data collected: Cookies and Usage Data
Duration: 1 Year
wp-settings
Allows optimised wordpress site display and usage by the administrator
Personal data collected: Cookies and usage data
Duration: 1 Year
wp-settings-time
Allows optimised display of the wordpress site and usage by the administrator.
Personal data collected: Cookies and usage data
Duration: 1 year
PHPSESSID
Identifies the current PHP session while visiting the site
Personal data collected: Cookies and usage data
Expiry: at the end of the browsing session
SESS
Ensures recognition when moving from one page to another within the site and ensures that any information entered is remembered.
Personal data collected: Cookies and usage data
Expiry: at the end of the browsing session
_icl_current_language
Display of language translation
Personal data collected: Cookies and usage data
Expiration: 1 Day
Contact Form
The user, upon acceptance of the Privacy Policy, consents to the sending and use of the data entered in the contact form in order to respond exclusively to requests for quotes and information.
Personal data collected: Name, Email, Request, Privacy acceptance (mandatory).
Data not stored.
Youtube and third-party services of Google Inc.
Youtube is a social network dedicated to displaying video content and is managed by Google Inc. with the possibility of integrating content within its pages.
Personal data collected: Cookies and usage data
Place of processing: USA – Privacy Policy – Opt in
Google Fonts service by Google Inc.
Google Fonts is a service for incorporating and displaying customised font styles and is operated by Google Inc.
Personal data collected: Cookies and usage data
Place of processing: USA – Privacy Policy – Opt in
Google Analytics (Google)
Google Analytics is a web analytics service provided by Google Inc. (“Google”). Google uses the Personal Data collected in order to track and examine the use of this Application, compile reports and share them with other services developed by Google.
Google may use Personal Data to contextualise and personalise ads in its advertising network.
Personal Data collected: Cookies and Usage Data.
Place of processing: USA – Privacy Policy – Opt Out
DATA CONTROLLER
The Data Controller of your personal data Sup Adventures asd, based in Carloforte (SU) – 09014, Via Dante 36, tel 334 2984666.
Since the installation of Cookies and other tracking systems operated by third parties through the services used within this site cannot be technically controlled by the Data Controller, any specific reference to Cookies and tracking systems installed by third parties is to be considered indicative only. For complete information, please consult the privacy policy of any third party services listed in this document.
In view of the objective complexity associated with the identification of Cookie-based technologies and their very close integration with the operation of the web, Users are invited to contact the Data Controller if they wish to receive any further information on the use of Cookies themselves and on any use of the same – for example by third parties – carried out via this website.
Changes to the Data Protection Policy
This Data Protection Policy may change from time to time. Please check the website regularly for the latest version.
Glossary
Data Protection Authority. Independent administrative authority established by Law No. 675 of 31 December 1996 in charge of supervising compliance with data protection regulations.
Personal data. Pursuant to Article 4(1)(1), this is ‘any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, by reference in particular to an identifier such as a name, an identification number, location data, an online identifier or one or more characteristic elements of its physical, physiological, genetic, psychic, economic, cultural or social identity.”
Regulation. The EU Regulation 2016/679 of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC.
Data controller. According to Article 4(1)(8) of the Regulation, this is the “natural or legal person, public authority, service or other body that processes personal data on behalf of the controller.”
Data Protection Officer (DPO) or Data Protection Officer. A figure introduced by the Regulation, whose main tasks include informing and advising the Controller, Managers and Data Processors on data protection issues; monitoring compliance with the Regulation; providing opinions on data protection impact assessments; and cooperating with the supervisory authority.
Data controller. According to Article 4(1)(7) of the Regulation, this is the “natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data […].”
Processing of personal data. According to Article 4(1)(2), this is “any operation or set of operations which is performed upon personal data or sets of personal data, whether or not by automatic means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.”